Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-387
HistorySep 18, 2003 - 12:00 a.m.

gopher - buffer overflows

2003-09-1800:00:00
Google
osv.dev
4

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

gopherd, a gopher server from the University of Minnesota, contains a
number of buffer overflows which could be exploited by a remote
attacker to execute arbitrary code with the privileges of the gopherd
process (the “gopher” user by default).

For the stable distribution (woody) this problem has been fixed in
version 3.0.3woody1.

This program has been removed from the unstable distribution (sid).
gopherd is deprecated, and users are recommended to use PyGopherd instead.

We recommend that you update your gopherd package.

Related

nessus 1
debiancve 1
openvas 2
debian 1
cve 1
nessus
nessus
Debian DSA-387-1 : gopher - buffer overflows
2004-09-29 00:00:00
debiancve
debiancve
CVE-2003-0805
2003-10-06 04:00:00
openvas
openvas
Debian: Security Advisory (DSA-387)
2008-01-17 00:00:00
Debian Security Advisory DSA 387-1 (gopher)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA-387-1] New gopher packages fix buffer overflows
2003-09-19 02:22:15
cve
cve
CVE-2003-0805
2003-10-06 04:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON
Related for OSV:DSA-387
nessus1debiancve1openvas2debian1cve1